$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DB8B1D30FAA911EBB2D7220CC4F9AE02.roa File: DB8B1D30FAA911EBB2D7220CC4F9AE02.roa (raw, json) Hash identifier: H+w9RLleYmSgHjsv6nLO2NOBXEJk9rGl+ry6SVNELC0= Subject key identifier: 90:D2:12:7C:34:D5:4F:05:49:43:97:BF:EC:BC:57:BD:73:69:78:E7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6EC2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DB8B1D30FAA911EBB2D7220CC4F9AE02.roa Signing time: Wed 10 May 2023 16:35:33 +0000 ROA not before: Wed 10 May 2023 16:35:33 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141515 IP address blocks: 103.160.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28354 (0x6ec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:35:33 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7d5-458c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f0:a5:dc:ad:c2:24:7d:60:9f:0b:cd:13:4d: 19:9f:76:eb:4d:b7:4f:43:ff:12:83:07:37:8a:bb: e8:c2:b7:da:2a:f4:62:50:50:bc:e3:90:af:57:96: 0c:36:ca:bf:4e:03:57:83:d9:e1:2c:64:0c:57:32: 08:4b:98:49:9c:9b:60:d9:b1:b0:95:90:5c:17:fe: d6:53:3f:d6:9f:82:83:05:1e:55:8e:eb:a7:0c:16: 25:36:29:7b:54:b6:bd:36:b2:03:95:40:95:30:2d: 91:6e:40:04:1e:d9:bd:26:4c:12:9e:1a:6c:69:df: eb:66:b5:96:06:6c:90:33:72:51:3e:e9:4c:59:af: 23:af:2d:14:a0:3d:2e:19:9b:a2:48:53:9b:78:c6: 22:bc:7e:c8:2b:8f:3e:50:b7:f7:a4:29:ff:be:ad: ff:e4:d6:1e:ef:34:3d:98:0a:8f:d7:ce:47:84:1f: 56:15:a7:28:83:ad:31:1c:f3:7d:f9:f3:0e:be:e8: ae:4d:91:1c:a9:f2:31:92:94:95:a1:a8:01:fe:62: 33:7d:ff:63:01:0a:04:79:4c:89:3e:fb:75:8a:4b: 61:03:9c:f2:2b:d0:8f:12:2c:0d:2a:81:aa:58:05: c7:f8:e5:33:54:f8:b1:0b:35:43:14:2b:3f:09:4d: 3d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D2:12:7C:34:D5:4F:05:49:43:97:BF:EC:BC:57:BD:73:69:78:E7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DB8B1D30FAA911EBB2D7220CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.242.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:bf:ad:66:a5:8f:28:d6:07:d5:db:01:de:f7:5e:ec:0c:a3: 40:e1:fa:2a:1a:5a:e9:31:2d:e7:af:bb:ee:47:9b:3b:0e:2a: 5a:dc:b9:7d:bf:c1:ce:fc:f7:f6:2e:41:58:eb:d4:b1:89:9f: ef:7e:5e:2f:4f:4f:d2:64:ec:a2:59:00:fb:6f:fd:23:98:d9: ee:00:ec:8f:d1:6e:71:e4:06:88:52:be:86:2d:23:7b:df:a5: 6b:31:4e:39:a1:2e:ec:a4:08:59:d4:cd:8b:d6:23:60:ab:aa: 26:79:b8:36:c6:25:b7:8a:dc:6c:73:a0:fa:d8:ac:26:23:9a: 2c:e9:0a:52:26:48:ab:6e:3e:43:f0:0e:67:4f:62:6e:cc:81: 9e:ee:69:4a:4f:b8:c8:a6:ab:1b:76:66:e1:6c:58:cf:53:16: f0:2f:f6:c9:55:0d:bd:e0:88:f6:b7:8c:5e:8e:f4:5a:b1:10: 7d:5b:54:b6:dc:e4:fb:9b:1a:8d:15:1c:00:f4:de:00:03:a2: 1f:0b:33:d4:5f:6c:b9:fb:90:3f:b9:36:25:32:7c:02:33:59: 34:79:11:94:92:3e:4a:b6:a4:81:41:c8:f8:d6:d5:94:9a:0c: e8:65:1f:be:74:3a:b1:c6:55:9d:f7:f1:23:7a:f9:5e:7d:b4: 27:ff:49:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNTMzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdkNS00NThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/Cl3K3CJH1gnwvNE00Zn3brTbdPQ/8Sgwc3irvowrfaKvRiUFC845CvV5YM Nsq/TgNXg9nhLGQMVzIIS5hJnJtg2bGwlZBcF/7WUz/Wn4KDBR5VjuunDBYlNil7 VLa9NrIDlUCVMC2RbkAEHtm9JkwSnhpsad/rZrWWBmyQM3JRPulMWa8jry0UoD0u GZuiSFObeMYivH7IK48+ULf3pCn/vq3/5NYe7zQ9mAqP185HhB9WFacog60xHPN9 +fMOvuiuTZEcqfIxkpSVoagB/mIzff9jAQoEeUyJPvt1ikthA5zyK9CPEiwNKoGq WAXH+OUzVPixCzVDFCs/CU09HQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJDSEnw0 1U8FSUOXv+y8V71zaXjnMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREI4QjFEMzBG QUE5MTFFQkIyRDcyMjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoPIwDQYJKoZIhvcNAQELBQADggEBAAu/rWaljyjWB9Xb Ad73XuwMo0Dh+ioaWukxLeevu+5HmzsOKlrcuX2/wc789/YuQVjr1LGJn+9+Xi9P T9Jk7KJZAPtv/SOY2e4A7I/RbnHkBohSvoYtI3vfpWsxTjmhLuykCFnUzYvWI2Cr qiZ5uDbGJbeK3GxzoPrYrCYjmizpClImSKtuPkPwDmdPYm7MgZ7uaUpPuMimqxt2 ZuFsWM9TFvAv9slVDb3giPa3jF6O9FqxEH1bVLbc5PubGo0VHAD03gADoh8LM9Rf bLn7kD+5NiUyfAIzWTR5EZSSPkq2pIFByPjW1ZSaDOhlH750OrHGVZ338SN6+V59 tCf/SSo= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:39 2024 by rpki-client on console-fra.rpki-client.org